Vulnerability Manager Plus

SUSE-SU-2016:1939-1(SUSE Linux Enterprise Server 11-SP4 ) libarchive2-2.5.5-9.1.x86_64.rpm

Risk Information

Base Score

7.5

MODERATE

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Score

Exploitation Probability

3.517%

CVE Information

Source CVE
CVE-2015-2304

Associated CVE
CVE-2015-2304
CVE-2015-8921
CVE-2015-8918
CVE-2015-8920

Patch Details

No records found

References

http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
http://advisories.mageia.org/MGASA-2015-0106.html
http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00025.html
http://lists.opensuse.org/opensuse-updates/2015-03/msg00065.html
http://rhn.redhat.com/errata/RHSA-2016-1844.html
http://rhn.redhat.com/errata/RHSA-2016-1850.html
http://www.debian.org/security/2015/dsa-3180
http://www.debian.org/security/2016/dsa-3657
http://www.openwall.com/lists/oss-security/2015/01/07/5
http://www.openwall.com/lists/oss-security/2015/01/16/7
http://www.openwall.com/lists/oss-security/2016/06/17/2
http://www.openwall.com/lists/oss-security/2016/06/17/5
http://www.securityfocus.com/bid/91300
http://www.securityfocus.com/bid/91301
http://www.securityfocus.com/bid/91307
http://www.securitytracker.com/id/1035996
http://www.ubuntu.com/usn/USN-2549-1
http://www.ubuntu.com/usn/USN-3033-1
https://blog.fuzzing-project.org/47-Many-invalid-memory-access-issues-in-libarchive.html
https://github.com/libarchive/libarchive/commit/59357157706d47c365b2227739e17daba3607526
https://github.com/libarchive/libarchive/issues/506
https://github.com/libarchive/libarchive/issues/511
https://github.com/libarchive/libarchive/issues/512
https://github.com/libarchive/libarchive/pull/110
https://groups.google.com/forum/#%21msg/libarchive-discuss/dN9y1VvE1Qk/Z9uerigjQn0J
https://security.gentoo.org/glsa/201701-03
https://www.freebsd.org/security/advisories/FreeBSD-SA-16:22.libarchive.asc